Monday, January 15, 2018

Penetration Tester

One of our large enterprise clients is looking for a Penetration Tester and the manager is available to interview ASAP. This is a 24 month Contract position that can sit in Charlotte, NC/ Phoenix, AZ/ San Francisco, CA/ Minneapolis, MN. Candidates must have experience with:   
 
  • 5 years of experience with BOTH manual and automated penetration testing of web applications
  • Burpsuite pro, IBM Appscan, HP Webinspect, Zap, and/or Fiddler experience 
 
GENERAL DESCRIPTION: 
• Conduct dynamic application security testing using both manual and automated testing tools. 
• Review test results from tools 
• Ensure that automated tests are completed successfully 
• Configure tools as required to be successful in evaluating VERA (Vendor remote access) applications 
• Identify and remove any false positives from automated testing tool reports 
• Triage & Disposition results and enforce a Bug Bar 
• Verify/validate defect fixes 
• Provide application security consulting SME Support to developers 
• Assist developers with understanding of security defects and risk 
• Assist in defining acceptable solution to fix defects 
• Communicate Security risk to ISCs and ORCs to document security issues and controls for security planning purposes 
• Help maintain Security Coding Standards and Bug Bar as required 
• Assist in the Development of standards as required 
• Provide training 

Mark Paun, Technical Recruiter
Apex Systems
mpaun@apexsystems.com